{
"xarf_version": "4.0.0",
"report_id": "h8i9j0k1-l2m3-4567-hi89-01234gh56789",
"timestamp": "2024-01-15T13:45:30Z",
"reporter": {
"org": "Malware Research Lab",
"contact": "malware@security-research.org",
"domain": "security-research.org"
},
"sender": {
"org": "Malware Research Lab",
"contact": "malware@security-research.org",
"domain": "security-research.org"
},
"source_identifier": "192.0.2.75",
"type": "malware",
"evidence_source": "automated_scan",
"url": "http://download-center.example.com/setup.exe",
"file_hash": "sha256:deadbeefcafebabe1234567890abcdef1234567890abcdef1234567890abcdef",
"file_size": 2048576,
"malware_family": "Trojan.Win32.Generic",
"detection_names": [
"Trojan:Win32/Wacatac.B!ml",
"Gen:Heur.Trojan.Script.1"
],
"evidence": [
{
"content_type": "application/octet-stream",
"description": "Malicious executable sample (truncated for safety)",
"payload": "TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAA=",
"hash": "sha256:deadbeefcafebabe1234567890abcdef1234567890abcdef1234567890abcdef"
}
],
"tags": [
"malware:trojan",
"platform:windows",
"delivery:direct_download"
],
"_internal": {
"source_system": "malware_research_lab_v2.8",
"transmission_id": "malware_scan_20240115_h8i9j0k1",
"parser_confidence": 0.98,
"validation_score": 0.96,
"data_quality_flags": [
"av_confirmed",
"multi_engine",
"behavioral_analysis"
],
"response_time_ms": 3200,
"false_positive_probability": 0.01,
"review_required": false,
"custom": {
"detection_engines": 47,
"engines_detected": 45,
"sandbox_verdict": "malicious",
"yara_matches": 12,
"family_confidence": 0.93,
"distribution_method": "drive_by_download"
}
},
"category": "content"
}